You don't have permission to access /cgi-bin/mailman/listinfo/mailman on this server.

Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.
Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny4 with Suhosin-Patch mod_ssl/2.2.9 OpenSSL/0.9.8g Server at server1.domain.org Port 80

I have been working about this question: I have read a lot of of documentation, forums, lists,... and I have made many test of Mailman+SuEXEC+Virtual Domains unsuccessfully. After this, I continued searching and I have find this specialist opinion:

1.- One domain with Mailman and without SuEXEC in my ISPConfig3 installation (and the rest of domains with SuEXEC).

2.- Another virtual machine with only Mailman with SuEXEC.

Please, help me to decide: how much dangerous can be have one domain without SuEXEC in my ISPConfig3 installation? This domain without SuEXEC can endanger to the rest of domains and my ISPConfig3 installation? This domain without SuEXEC would only have Mailman and two html pages.